npm - @agent-native/core - Versions diffs - 0.12.11 → 0.12.13 - Mend

@agent-native/core 0.12.11 → 0.12.13

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (41) hide show

package/dist/cli/workspace-dev.js +15 -11
package/dist/cli/workspace-dev.js.map +1 -1
package/dist/client/NewWorkspaceAppFlow.d.ts.map +1 -1
package/dist/client/NewWorkspaceAppFlow.js +5 -2
package/dist/client/NewWorkspaceAppFlow.js.map +1 -1
package/dist/client/extensions/ExtensionsListPage.d.ts.map +1 -1
package/dist/client/extensions/ExtensionsListPage.js +2 -2
package/dist/client/extensions/ExtensionsListPage.js.map +1 -1
package/dist/client/settings/SettingsPanel.d.ts.map +1 -1
package/dist/client/settings/SettingsPanel.js +20 -16
package/dist/client/settings/SettingsPanel.js.map +1 -1
package/dist/client/settings/useBuilderStatus.d.ts +7 -7
package/dist/client/settings/useBuilderStatus.d.ts.map +1 -1
package/dist/client/settings/useBuilderStatus.js +1 -6
package/dist/client/settings/useBuilderStatus.js.map +1 -1
package/dist/client/vite-dev-recovery-script.d.ts.map +1 -1
package/dist/client/vite-dev-recovery-script.js +10 -1
package/dist/client/vite-dev-recovery-script.js.map +1 -1
package/dist/server/builder-browser.d.ts +4 -4
package/dist/server/builder-browser.d.ts.map +1 -1
package/dist/server/builder-browser.js +1 -0
package/dist/server/builder-browser.js.map +1 -1
package/dist/server/core-routes-plugin.d.ts.map +1 -1
package/dist/server/core-routes-plugin.js +33 -59
package/dist/server/core-routes-plugin.js.map +1 -1
package/dist/server/credential-provider.d.ts +20 -14
package/dist/server/credential-provider.d.ts.map +1 -1
package/dist/server/credential-provider.js +32 -45
package/dist/server/credential-provider.js.map +1 -1
package/dist/templates/default/app/root.tsx +14 -1
package/dist/templates/default/package.json +0 -1
package/dist/transcription/builder-transcription.d.ts.map +1 -1
package/dist/transcription/builder-transcription.js +10 -3
package/dist/transcription/builder-transcription.js.map +1 -1
package/dist/vite/client.d.ts +2 -0
package/dist/vite/client.d.ts.map +1 -1
package/dist/vite/client.js +2 -0
package/dist/vite/client.js.map +1 -1
package/package.json +1 -1
package/src/templates/default/app/root.tsx +14 -1
package/src/templates/default/package.json +0 -1

package/dist/server/core-routes-plugin.js CHANGED Viewed

@@ -368,39 +368,10 @@ export function createCoreRoutesPlugin(options = {}) {
                     branchProjectIdConfigured: !!projectId,
                     branchProjectId: projectId || undefined,
                 };
-                // Env-managed mode: BUILDER_PRIVATE_KEY is set at the deployment
-                // level, so every user shares the operator's Builder identity.
-                // Skip per-user credential lookups entirely — the env key is
-                // authoritative and the UI must hide connect/disconnect controls.
-                // Branch project IDs are still request-scoped above so a Builder.io
-                // org secret can enable branches without a deploy env var.
-                if (envStatus.envManaged) {
-                    return withConnectToken(requestStatus);
-                }
-                // Per-user OAuth mode: read the user's app_secrets-stored creds.
-                try {
-                    const { resolveBuilderCredentials } = await import("./credential-provider.js");
-                    const creds = await resolveBuilderCredentials();
-                    if (creds.privateKey) {
-                        return withConnectToken({
-                            ...requestStatus,
-                            configured: true,
-                            privateKeyConfigured: true,
-                            publicKeyConfigured: !!creds.publicKey,
-                            userId: creds.userId || envStatus.userId,
-                            orgName: creds.orgName || envStatus.orgName,
-                            orgKind: creds.orgKind || envStatus.orgKind,
-                        });
-                    }
-                }
-                catch {
-                    // Secrets table not ready — fall through to env status
-                }
-                // Surface a recent OAuth callback failure so the parent's polling
-                // stops with a clear message instead of timing out at 5min. The
-                // callback handler writes a `builder-connect-error:<email>` row
-                // when `writeBuilderCredentials` throws; this read self-clears so
-                // the message only fires once.
+                // Surface a recent OAuth callback failure before reporting a
+                // deployment fallback as "connected"; otherwise a failed personal
+                // connect attempt on a deploy that also has BUILDER_PRIVATE_KEY set
+                // looks successful even though the user's credentials were not saved.
                 try {
                     if (userEmail) {
                         const errKey = `builder-connect-error:${userEmail}`;
@@ -428,6 +399,31 @@ export function createCoreRoutesPlugin(options = {}) {
                 catch {
                     // settings store unavailable — fall through
                 }
+                // Read request-scoped Builder credentials first; deploy env is only
+                // the fallback. This keeps a root/local BUILDER_PRIVATE_KEY from
+                // blocking a user from connecting their own Builder account.
+                try {
+                    const { resolveBuilderCredentials, resolveBuilderCredentialSource, } = await import("./credential-provider.js");
+                    const [creds, credentialSource] = await Promise.all([
+                        resolveBuilderCredentials(),
+                        resolveBuilderCredentialSource(),
+                    ]);
+                    if (creds.privateKey) {
+                        return withConnectToken({
+                            ...requestStatus,
+                            configured: true,
+                            privateKeyConfigured: true,
+                            publicKeyConfigured: !!creds.publicKey,
+                            userId: creds.userId || envStatus.userId,
+                            orgName: creds.orgName || envStatus.orgName,
+                            orgKind: creds.orgKind || envStatus.orgKind,
+                            credentialSource: credentialSource ?? undefined,
+                        });
+                    }
+                }
+                catch {
+                    // Secrets table not ready — fall through to env status
+                }
                 // Honor legacy disconnect flag for existing deployments.
                 try {
                     const disconnected = await getSetting("builder-disconnected");
@@ -529,19 +525,6 @@ export function createCoreRoutesPlugin(options = {}) {
                 setResponseStatus(event, 401);
                 return { error: "Authentication required" };
             }
-            // Env-managed mode: per-user OAuth is disabled because the operator
-            // already provided a deploy-level Builder identity. Reject the
-            // connect attempt — any per-user keys we wrote would be ignored
-            // by the resolver, so completing the OAuth flow would be a no-op
-            // that misleads the user about the resulting connection state.
-            const { isBuilderEnvManaged } = await import("./credential-provider.js");
-            if (isBuilderEnvManaged()) {
-                setResponseStatus(event, 409);
-                return {
-                    error: "Builder is managed by the deployment (BUILDER_PRIVATE_KEY is set). Per-user connect is disabled.",
-                    envManaged: true,
-                };
-            }
             const requestUrl = new URL(`${event.url?.pathname || "/"}${event.url?.search || ""}`, getOrigin(event));
             const connectToken = requestUrl.searchParams.get(BUILDER_CONNECT_PARAM);
             const hasValidConnectToken = verifyBuilderConnectToken(connectToken, ownerEmail);
@@ -878,10 +861,9 @@ export function createCoreRoutesPlugin(options = {}) {
             return createBuilderBrowserCallbackPage(previewUrl);
         }));
         // POST /_agent-native/builder/disconnect — revoke the user's per-user
-        // Builder credentials in app_secrets. In env-managed mode (deploy-level
-        // BUILDER_PRIVATE_KEY set) disconnection is operator-controlled — this
-        // endpoint refuses with 409 so a stale UI button can't pretend to
-        // disconnect a deploy-level identity it doesn't own.
+        // or org-scoped Builder credentials in app_secrets. Deploy-level env
+        // credentials are never mutated here; if env is configured it remains as
+        // the fallback after request-scoped credentials are removed.
         getH3App(nitroApp).use(`${P}/builder/disconnect`, defineEventHandler(async (event) => {
             if (getMethod(event) !== "POST") {
                 setResponseStatus(event, 405);
@@ -892,15 +874,7 @@ export function createCoreRoutesPlugin(options = {}) {
                 setResponseStatus(event, 401);
                 return { error: "unauthorized" };
             }
-            const { isBuilderEnvManaged, deleteBuilderCredentials } = await import("./credential-provider.js");
-            if (isBuilderEnvManaged()) {
-                setResponseStatus(event, 409);
-                return {
-                    ok: false,
-                    error: "Builder is managed by deploy-level BUILDER_PRIVATE_KEY. To disconnect, the operator must remove the env var.",
-                    envManaged: true,
-                };
-            }
+            const { deleteBuilderCredentials } = await import("./credential-provider.js");
             // Mirror the connect-side scope decision so disconnect undoes
             // exactly what connect wrote: owner/admin connections land at
             // org scope and tear down at org scope; member or no-org